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REMARKS 

In view of the following discussion, the Applicants submit that none of the claims 
now pending in the application is anticipated under the provisions of 35 U.S.C. § 102 or 
made obvious under the provisions of 35 U.S.C. § 103. Thus, the Applicants believe 
that all of these claims are now in allowable form. 

I. OBJECTIONS TO THE DISCLOSURE 

The Examiner objects to the discussion of Fig. 1 in the Specification. 
Specifically, the Examiner submits that the discussion of Fig. 1 in the Detailed 
Description should be part of the Background of the Invention. In response, the 
Applicants have inserted the discussion of Fig. 1 into the Background of the Invention, 
and deleted the discussion from the Detailed Description. Thus, the Applicants 
respectfully request that this objection be withdrawn. 

Moreover, the Examiner objects to the disclosure because line numbering Is not 
provided for the Claims and the Abstract and requests that line numbers be provided in 
these portions of the disclosure. The Applicants respectfully submit that line numbering 
is not required by the MPEP, and that lack of line numbering is therefore not a proper 
basis for an objection to the disclosure. Thus, the Applicants respectfully request that 
this objection be withdrawn. 

In addition, the Applicants have voluntarily amended the Specification in order to 
correct minor typographical errors and to provide more complete disclosure. 
Specifically, the paragraph beginning on page 11. line 14 and ending on page 12. line 4 
has been amended in accordance with MPEP §608.01 to remove embedded hyperlinks 
from the URLs referenced on page 12, line 3. In addition, the paragraph beginning on 
page 9, line 18 and ending on page 9. line 26 has been amended to include the serial 
number and filing date for the referenced U.S. Patent Application. The*Applicants 
submit that no new matter was entered into the Specification as a result of these 
amendments. 
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, , n MM OWECTQNS several 

The Examiner objects to claims 2-5. 7, 9-14 ana 10-1 
Hermans. In response, the Applicant have amended Calms 2-5. 7. 9-14 and 16-17 
as suaaested by the Examiner. 

'specfflcaV the A*** have amended daims ,A 7. Ml. 13-14 and 16- 7 
to indude a comma after the phrase The system of Calm r. C.a,m 5 has been 
amended to indude a emma after the phrase 'The system o, claim 4" and da,m 
has been amended to include a comma afterthe phrase The system of da,m 11 . 
In addition, the Applicants have voluntarily amended daims 9. 10 and 

*i i in nartiruiar claim 9 has been amended to recite, 

correct minor grammatical errors. In particular, ciaim » 

-the plurality of interconnected nodes fa communicatively coupled replacing "the 
plurality of interconnected nodes are communicatively coupled Claim 10 has been 
amended to recite, the plurality of master nodes fc part replacing -the plurality of 
master nodes are part". Claim 17 has been amended to recite, "at .east one of the 
master nodes is operable replacing "at least one of the master nodes are operable . 

The Applicants therefore submit that claims 2-5, 7, 9-14 and 16-17 are .n proper 
form. Thus, the Applicants respectfully request that the objection to claims 2-5. 7. 9-14 
and 1 6-1 7 be withdrawn. 

ill REJECTIQM "P ft'-AIMS 1- ™ AMD 17 UNDFR 35 U S C - S 102 

Claims 1-13 and 17 stand rejected as being anticipated by the Pandya patent 
(United States Patent No. 6.671.724. Issued December 30, 2003. hereinafter "Pandya"). 
The Applicants respectfully traverse the rejection. 

Pandya teaches a system for managing network resources in a distributed 
networking environment. The system includes two main software components: a 
plurality of "agent" components deployed at various network devices, and one or more 
"control point" components deployed throughout the network. The agents mentor 
network resources, as well as the network devices wfth which they ere associated for 
example to assess the character and quantity of network resources that are reou.red^ by 
the network devices. The agents report this information to the control points, which 
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, «*g *• deoloved agents and monitor the status of. network 
— coordinate and "^J^Z^s and the data reported by the 
resources. In response to monrtored new . narficular agente in order to provide 
agents, the control points may alter the behavor of partcufcr agen 

1. specifically. Applicants' claim 1 positively recrtes:- 

1 ' J p»"^^^^ -pleo * each other . 
Kor nnHas of i virtual private "ffi*,^ „,? r ^ n ni~ pr—llim ™™hershlD In 

The Applicants' Invent is directed to methods and apparatuses for scalable 
dis Jl management of *«. private nelv^s (VPNsV The -^of 
encrypted group communions necessary to establish secure, pnvate VPN 
coZTnicJons channels through an undedylng public networR Infra** cture places a 
Zl of burdens on a VPN manager. In particular, the addiKon or removal of a 
Ilr fl^PN often Solves the general and distfbution of one or more new 
r^t oXs ^ allow current VPN members to decrypt private communions 
T^Zn the VPN but prevent non-VPN members from decrying the 

burdensome. Thus, the VKN manag 

VP, ovenoed of the - 

VPN architecture very difficult ana very cos»y 

retfng on secure and pnvate elects communications. 

The Applicants' Invention enhances the scalab.lrty of a VPN 
member nodeTof the VPN Into subsets and providing a plural* of wm«zte that 
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are each associated with a subset of member nodes to ccjnJr^Lrn^^ 
for that subset. For examp.e, each master node is responsible for manage *. 
generation and distribution of encryption Keys for only Its associated subset(s). so that 
VPN communication and management burdens are not placed entirely on a s.ngle 
master node. This eliminates the single point of failure, because If one master node 
fails any one of a plurality of other master nodes is available to assume the Mad 
node's responsibilities. Moreover, a VPN employing such an architecture is more easily 
scalable than a VPN employing a more conventional architecture, because a plurality of 
new member nodes may be added to the VPN through a discrete master node. The 
security and privacy afforded by traditional VPNs is still retained. 

In contrast. Pandya teaches a distributed network comprising a plurality of 
interconnected computing devices, not a VPN. Specifically, Pandya does not teach or 
suggest a network architecture that provides secure, private communications channels 

between select network devices. 

Moreover, Pandya teaches a method for locally monitoring network devices in 
order to " r"mi~ network ^ allocation among multiple devices, for example via 
local agents that report back to a central control point. Pandya does not address the 
need to membership in the network in which the agents and the control points 

are deployed, for example through the management and distribution of encryption keys 
to select member nodes. Furthermore, nowhere does Pandya teach or even suggest 
the desirability of controlling membership in the network, e.g., in order to provide secure 
communications channels between networked devices. Pandya thus fails to teach or 
make obvious a system for scalably managing VPNs that controls membersh.p In 
discrete VPN subsets, as positively claimed by the Applicants in dalm 1 . Therefore, for 
at least the reasons set forth above, the Applicants submit that independent claim 1 fully 
satisfies the requirements of 35 U.S.C. §102 and is patentable thereunder. 

Dependent claims 2-13 and 17 depend from claim 1 and recite additional 
features therefore. As such, and for at least the reasons set forth above, the Applicants 
submit that claims 2-13 and 17 are not anticipated by the teachings of Pandya. 
Therefore, the Applicants submit that dependent claims 2-13 and 17 also fully satisfy 
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the requirements of 35 U.S.C. §102 and are patentable thereunder. 

IV. REJECTION OF CLAIMS 14-16 UNDE R 35 U.S.C. 6 103 

Claims 14-1 6 stand rejected as being unpatentable over Pandya. The Applicants 

respectfully traverse the rejection. 

Pandya has been discussed above. As discussed, Pandya fails to disclose or 
suggest the novel invention of * wir*..*i nrivate network In which master nodes control 
membership for subsets of member nodes, as claimed in Applicants' independent claim 
1, from which claims 14-16 depend. Moreover, nowhere does Pandya teach or even 
suggest the desirability of controlling or restricting membership in the network in which 
the agents and the control points are deployed, e.g., In order to provide secure 
communications channels between networked devices. Pandya thus fails to teach or 
make obvious a system for scalably managing VPNs that controls membership in 
discrete VPN subsets, as positively claimed by the Applicants in claim 1 . Therefore, for 
at least the reasons set forth above, the Applicants submit that independent claim 1 fully 
satisfies the requirements of 35 U.S.C. §1 03 and is patentable thereunder. 

Dependent claims 14-16 depend from claim 1 and recite additional features 
therefore. As such, and for at least the reasons set forth above, the Applicants submit 
that claims 14-16 are not made obvious by the teachings of Pandya. Therefore, the 
Applicants submit that dependent claims 14-16 also fully satisfy the requirements of 35 
U.S.C. §103 and are patentable thereunder. 



Conclusion 

Thus, the Applicants submit that all of the presented claims fully satisfy the 
requirements of 35 U.S.C. §102 and 35 U.S.C. §103. Consequently, the Applicants 
believe that all of the presented claims are presently in condition for allowance. 
Accordingly, both reconsideration of this application and its swift passage to issue are 
earnestly solicited. 

If, however, the Examiner believes that there are any unresolved issues requiring 
the issuance of a final action in any of the claims now pending in the application, it is 
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, H M the Examiner telephone l -rr^^^ at < 732) 63WM<H *° 
^^1^ I * — * resoMn g S.C issue* as expe— 

as p0SsiWe - Respec^Uy^submitted, 
? // /> % 



Date 



Moser, Patterson & Sheridan, LLP 
595 Shrewsbury Avenue 
Shrewsbury, New Jersey 0770^ 




Kln-Wah Tong, Attorney 
Reg. No. 39,400 
(732) 530-9404 
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